Lucene search
+L

132 matches found

osv
osv
added 2025/11/20 8:59 p.m.3 views

GHSA-MRW7-HF4F-83PF vLLM deserialization vulnerability leading to DoS and potential RCE

Summary A memory corruption vulnerability that leading to a crash denial-of-service and potentially remote code execution RCE exists in vLLM versions 0.10.2 and later, in the Completions API endpoint. When processing user-supplied prompt embeddings, the endpoint loads serialized tensors using...

8.8CVSS6.5AI score0.00849EPSS
Exploits0References5
github
github
added 2025/11/20 8:59 p.m.12 views

vLLM deserialization vulnerability leading to DoS and potential RCE

Summary A memory corruption vulnerability that leading to a crash denial-of-service and potentially remote code execution RCE exists in vLLM versions 0.10.2 and later, in the Completions API endpoint. When processing user-supplied prompt embeddings, the endpoint loads serialized tensors using...

8.8CVSS8.3AI score0.00849EPSS
Exploits0References5Affected Software1
osv
osv
added 2025/10/09 2:22 p.m.4 views

GHSA-M9MP-6X32-5RHG scio is vunerable to Remote Command Execution through PyTorch

Impact PyTorch reported a critical vulnerability when using torch.load, even with option weightsonly=True, for torch = 2.6, starting from scio = 1.0.1 currently in dev state. Workarounds You can manually check that you are using torch = 2.6...

9.3CVSS6.9AI score
Exploits0References3
github
github
added 2025/10/09 2:22 p.m.6 views

scio is vunerable to Remote Command Execution through PyTorch

Impact PyTorch reported a critical vulnerability when using torch.load, even with option weightsonly=True, for torch = 2.6, starting from scio = 1.0.1 currently in dev state. Workarounds You can manually check that you are using torch = 2.6...

6.9AI score
Exploits0References3Affected Software1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-13502

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00762EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-21558

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00639EPSS
Exploits1References4
euvd
euvd
added 2025/10/03 8:7 p.m.12 views

EUVD-2025-25170

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00462EPSS
Exploits1References5
snyk
snyk
added 2025/08/19 2:42 p.m.6 views

Deserialization of Untrusted Data

Overview verl is a verl: Volcano Engine Reinforcement Learning for LLM Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the torch.load function in the modelmerger.py script when processing user-supplied .pt files with weightsonly=False. An attacker can...

6.5CVSS7.7AI score0.00462EPSS
Exploits1References2
nvd
nvd
added 2025/08/19 2:15 p.m.9 views

CVE-2025-50461

A deserialization vulnerability exists in Volcengine's verl 3.0.0, specifically in the scripts/modelmerger.py script when using the "fsdp" backend. The script calls torch.load with weightsonly=False on user-supplied .pt files, allowing attackers to execute arbitrary code if a maliciously crafted...

6.5CVSS0.00462EPSS
Exploits1References5
osv
osv
added 2025/08/19 2:15 p.m.6 views

CVE-2025-50461

A deserialization vulnerability exists in Volcengine's verl 3.0.0, specifically in the scripts/modelmerger.py script when using the "fsdp" backend. The script calls torch.load with weightsonly=False on user-supplied .pt files, allowing attackers to execute arbitrary code if a maliciously crafted...

6.5CVSS6.4AI score0.00462EPSS
Exploits1References5
vulnrichment
vulnrichment
added 2025/08/19 12:0 a.m.7 views

CVE-2025-50461

A deserialization vulnerability exists in Volcengine's verl 3.0.0, specifically in the scripts/modelmerger.py script when using the "fsdp" backend. The script calls torch.load with weightsonly=False on user-supplied .pt files, allowing attackers to execute arbitrary code if a maliciously crafted...

8.1AI score0.00462EPSS
Exploits1References5
cve
cve
added 2025/08/19 12:0 a.m.22 views

CVE-2025-50461

CVE-2025-50461 describes a deserialization vulnerability in Volcengine Verl 3.0.0, specifically in scripts/model_merger.py when using the "fsdp" backend. The code calls torch.load() with weights_only=False on user-supplied .pt files, enabling arbitrary code execution if a malicious model file is ...

6.5CVSS7.5AI score0.00462EPSS
Exploits1References5
snyk
snyk
added 2025/07/31 2:5 p.m.3 views

Deserialization of Untrusted Data

Overview ms-swift is a Swift: Scalable lightWeight Infrastructure for Fine-Tuning Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the torch.load function. An attacker can execute arbitrary commands by uploading a maliciously crafted adapter model file tha...

7.5CVSS7.7AI score
Exploits0References3
redhatcve
redhatcve
added 2025/07/17 9:1 p.m.15 views

CVE-2025-49840

GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI. In versions 20250228v3 and prior, there is an unsafe deserialization vulnerability in inferencewebui.py. The GPTdropdown variable takes user input and passes it to the changegptweights function. In changegptweights, the user input,...

9.8CVSS7.2AI score0.00639EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2025/07/15 8:40 p.m.9 views

CVE-2025-49839 GHSL-2025-051: GPT-SoVITS Deserialization of Untrusted Data vulnerability

GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI. In versions 20250228v3 and prior, there is an unsafe deserialization vulnerability in bsroformer.py. The modelchoose variable takes user input e.g. a path to a model and passes it to the uvr function. In uvr, a new instance of...

9.3CVSS6.5AI score0.00661EPSS
Exploits1References5
cve
cve
added 2025/05/15 2:31 p.m.56 views

CVE-2025-4701

The CVE-2025-4701 issue affects VITA-MLLM Freeze-Omni (up to 20250421), specifically the torch.load usage in models/utils.py where improper handling of the path argument enables deserialization and a potential local-host exploit. Root cause: manipulation of the path parameter in torch.load leads ...

5.3CVSS5.3AI score0.00169EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2025/05/15 12:0 a.m.6 views

PT-2025-21290 · Unknown +1 · Vita-Mllm Freeze-Omni +1

Name of the Vulnerable Software and Affected Versions: VITA-MLLM Freeze-Omni up to 20250421 Description: A problematic issue has been found, affecting the torch.load function in the models/utils.py file. The manipulation of the path argument leads to deserialization, allowing an attack to be...

5.3CVSS5.1AI score0.00169EPSS
Exploits0References7
bdu_fstec
bdu_fstec
added 2025/04/24 12:0 a.m.10 views

The vulnerability of the torch.load() function in the PyTorch machine learning framework allows a hacker to execute arbitrary code.

The vulnerability of the torch.load function in the PyTorch machine learning framework is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS8.5AI score0.01917EPSS
Exploits1References3Affected Software1
snyk
snyk
added 2025/04/23 10:21 p.m.8 views

Deserialization of Untrusted Data

Overview llamafactory is an Easy-to-use LLM fine-tuning framework Affected versions of this package are vulnerable to Deserialization of Untrusted Data through the torch.load function. An attacker can execute arbitrary commands by crafting a malicious .bin file that is then deserialized. PoC pyth...

7.8CVSS7.6AI score0.00232EPSS
Exploits1References2
pypa
pypa
added 2025/04/18 4:15 p.m.14 views

PYSEC-2025-41

PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command Execution RCE vulnerability exists in PyTorch when loading a model using torch.load with...

9.8CVSS7.2AI score0.01917EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder